AdaptiveMobile Security, an Enea company and the world leader in mobile network security, has published a comprehensive blueprint on how to secure SMS on 5G Networks. The research outlines how SMS operates on the next generation of networks, identifying the emerging security risks and attack scenarios that exist on 5G networks.
It also sets out the principles for securing 5G networks against malicious attacks via SMS, including the need for attack correlation across both legacy 2G, 3G, 4G and new 5G protocols and between different interfaces to identify the real threats.
The research details how the security of SMS communication in 5G is more important than ever and the key aspects mobile operators must consider when protecting their subscribers from attacks.
There are new security considerations as SMS usage increasingly moves from user-centric messaging towards Application-to-Person (A2P) and Machine-to-Machine (M2M) SMS-based messaging. A growing number of enterprises are dependent on SMS for direct communication with their customers, and the market is witnessing huge expansion in the Communications Platform as a Service (CPaaS) sector which in turn is driving the unstoppable momentum witnessed in A2P SMS.
Meanwhile, the growth of IoT devices and the subsequent increase in M2M SMS means that messaging must be secured at the network level due to the lack of any human supervision that could detect a security breach and raise an alert.
SMS on 5G networks also retains legacy technology which must be integrated with the new technologies 5G brings to the mobile network, with attackers able to use an extensive toolkit of techniques to penetrate networks at various entry points until they succeed.
Even with new standards and specifications, 5G is not completely secure, and lessons from the vulnerabilities of previous mobile network generations must be learned and applied to secure the future of SMS mobile messaging in 5G. The mistakes of 3G and 4G must not be repeated.
“Rumours of the demise of SMS have been greatly exaggerated, in particular in the A2P market where we continue to see strong growth. SMS holds and will continue to hold significant and considerable advantages to Over-the-Top messaging services. Despite all the new features of 5G, SMS’s ability to reach every mobile device in the world makes it a powerful tool for mobile operators and brands, both today but also for the foreseeable future,” says Cathal McDaid, CTO of AdaptiveMobile Security. “However, securing SMS over 5G is a complex combination of dealing with legacy technology, while also integrating with the new demands and network designs that 5G brings. Mobile network operators must ensure they are fully aware of the potential threats and how to best to mitigate them both today and in the future as they migrate to 5G.”
This research is the latest in a series of groundbreaking work done by AdaptiveMobile Security into new 5G network technologies, use-cases and the associated security challenges these create. The AdaptiveMobile Security research team has published analysis on general 5G security challenges, specifically on securing the core network migration from 4G to 5G and most recently on Slicing Security in 5G Core Network. In this latest 5G Security research, AdaptiveMobile Security determines if there are any security implications to consider for SMS as mobile operators roll out 5G networks and migrate subscribers to the next generation of mobile networks.
The full research paper, Messaging for the Future: Securing SMS in 5G, is available for download from here.